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Application/Control Number: 10/698,602 
Art Unit: 2683 

Response to Arguments 

1. Applicant's arguments filed 15 December 2005 have been fully considered but they are 
not persuasive. 

2. Regarding Applicants argument that Sygate doesn't teach providing a plurality of 
communication connections and that Sygate does not teach associating the application with a 
plurality of connections, Examiner disagrees. On page 8 under "bi-Directional Defense" Sygate 
teaches "Sygate Personal Firewall Pro is a must-have security measure for any PC or lap-top 
that connects to any network" and on page 40 "Advanced status configuration settings allow you 
to specify which port an application can use" and on page 44 the figure shows 4 ports / 
connections entries for entering trusted remote and local ports for the application also see page 
45 number 9. Examiner agrees that Sygate does not specifically teach an application being able 
to access the internet, but not able to access the corporate network, but this limitation is not 
indicated in the claims. 

3. Regarding the argument that Sygate does not teach that the request is for the use of a 
particular transport layer. Claims 1 1 and 23 only indicate "request for use of a physical transport 
layer", not a particular transport layer and in order to access the internet, a physical transport 
layer must be accessed. Regarding connection types, the Examiner equates the ports allowed 
with the connection types allowed and all other ports with connections that are prohibited. 
Regarding the installation, Sygate teaches on Pages 21 a pop-up appearing because of opening 
Internet Explorer and configuring the control information on Pages 22 and 23 when this occurs. 
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Examiner assumes that during installation of internet explorer that it opens during the installation 
process, however this limitation is not specifically taught and the Examiner has allowed claim 
11. 

Claim Rejections - 35 USC § 112 
The following is a quotation of the second paragraph of 35 U.S.C. 1 12: 

The specification shall conclude with one or more claims particularly pointing out and distinctly claiming the 
subject matter which the applicant regards as his invention. 

4. Claim 36 recites the limitation "the physical transport layer". There is insufficient 
antecedent basis for this limitation in the claim. 

Claim Rejections - 35 USC §102 
The following is a quotation of the appropriate paragraphs of 35 U.S.C. 102 that form the 
basis for the rejections under this section made in this Office action: 

A person shall be entitled to a patent unless - (a) the invention was known or used by others in this country, or 
patented or described in a printed publication in this or a foreign country, before the invention thereof by the applicant 
for a patent 

5. Claims 1,2,4-10,12-14,17,19,21-24, 26-30 and 32-36 are rejected under 35 U.S.C. 102(a) 
as being unpatentable by Sygate (Personal Firewall Pro User Guide XP-002248366). 

Referring to claim 1, Sygate teaches a method of controlling a connection on a remote 
communicating device (Page 14; Supported Internet Connectivity), the method comprising the 
steps of: receiving a connection request from a software application executing on a remote 
communicating device (Page 1 1 and 14); wherein the remote communication device has a 
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plurality of communication connections for communicating with other devices (Page 8, 40,44 
and 45); determining if the received connection request satisfies connection control information 
associated with the software application (Page 1 1 and 40); the connection control information 
including an association between the software application and one or more of the communication 
connections (Page 44), wherein said association includes whether a connection is permissible 
with respect to one or more of the communication connections for the software application (Page 
40, 44 and 45); and if the connection request satisfies connection control information associated 
with the software application (Page 1 1, 20, 38 and 40), authorizing the opening of a 
communication connection for use by the software application (Page 1 1, 20, 38 and 40). For 
each application, when a connection request is made, the previous checksum is compared to the 
current checksum and the access status is checked to see if the status is allow, ask or block. In 
the allowed status the scheduled time to allow a connection is checked against the requested time 
(Page 38 and 44). 

Referring to claim 2, Sygate further teaches wherein the step of authorizing the opening 
of the communication connection comprises the step of opening the communication connection 
for use by the software application (Page 40-42). 

Referring to claim 4, Sygate further teaches retrieving connection control information 
associated with the software application (Page 1 1,20,38 and 40). The previous checksum and the 
access status are retrieved. 
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Referring to claim 5, Sygate further teaches comparing one or more control criteria based 
on the retrieved connection control information with one or more request parameters based upon 
the received connection request. For each application, when a connection request is made, the 
previous checksum is compared to the current checksum and the access status is checked to see if 
the status is allow, ask or block. In the allowed status the scheduled time to allow a connection 
is checked against the requested time (Page 38 and 44) 

Referring to claim 6, Sygate further teaches determining a desired communication 
connection from the received connection request (Page 14; Network Connection) and, if the 
retrieved connection control information comprises a record of the desired communication 
connection as an allowable communication connection (Page 1 1, 40 and 44), then determining 
that the received connection request satisfies connection control information associated with the 
software application (Page 1 1, 40 and 44). For each application, when the previous checksum 
equals the current checksum and the access status is allowed and the requested connection time 
is within the allowable connection times scheduled than the connection request satisfies the 
connection control information. 

Referring to claim 7, Sygate further teaches determining a desired communication 
connection from the received connection request (Page 14; Network Connection) and, if the 
retrieved connection control information comprises a record of the desired communication 
connection as a prohibited communication connection (Page 40; Block), then determining that 
the received connection request does not satisfy connection control information associated with 
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the software application (Page 40; Block). When a access status for an application is block, then 
a connection is not permitted. In addition, when the access status is in the allowed state and the 
requested connection time is not within the scheduled time, then a connection is not permitted. 

Referring to claim 8, Sygate further teaches receiving connection control information 
associated with the software application and storing the received connection control information 
(Page 1 1 and 40). The current checksum is stored, the access status is stored and the scheduled 
time is stored. 

Referring to claim 9, Sygate further teaches authenticating the received connection 
control information (Page 1 1 and 20-22). A different checksum causes the pop-up message to 
occur to determine whether the user initiated the connection request and hence validating the 
new checksum. 

Referring to claim 10, Sygate further teaches receiving a connection control information 
update associated with the software application and updating the stored connection control 
information based upon the received connection control information update (Page 43). 
Changing the status of an application. 

Referring to claim 12, Sygate further teaches providing an interface to a user of the 
remote communicating device if the connection request does not satisfy connection control 
information associated with the software application, wherein the provided interface permits the 
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user to indicate authorization for the opening of the communication connection (Page 20-23). A 
different checksum causes the pop-up message to occur to determine whether the user initiated 
the connection request and allowing the user to authorize the connection by selecting c yes" 

Referring to claim 13, Sygate further teaches receiving an indication of approval from 
the provided interface and authorizing the opening of a communication connection for use by the 
software application (Page 20-23). A different checksum causes the pop-up message to occur to 
determine whether the user initiated the connection request and allowing the user to authorize the 
connection by selecting 4 yes". 

Referring to claim 14, Sygate further teaches updating connection control information 
associated with the software application based upon the received indication (Page 23). The 
access status is assigned Block. 

Referring to claim 17, Sygate further teaches one or more computer-readable media 
storing instructions that upon execution by a computer cause the computer to control a 
connection on a remote communicating device (Page 1 1 and 14). Sygate is software that 
controls the connection of a communication device and wireless devices are included page 14. 

Referring to claim 19, Sygate further teaches wherein the communication connection 
allows access to data from a computer within a secured corporate computer network (Page 8; 
Any location). 
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Referring to claim 21, Sygate teaches a system for controlling connections on a remote 
communicating device (Page 14; Supported Internet Connectivity), the system comprising: a data 
store capable of storing connection control information associated with one or more software 
applications that are capable of execution on the remote communicating device (Page 42; 
Figure); a connection interface to a communication channel (Page 14; Supported Internet 
Connectivity); wherein the remote communication device has a plurality of communication 
connections for communicating with other devices through the communication channel (Page 8, 
40,44 and 45); a connection controller (Page 8), wherein the connection controller comprises one 
or more processing elements (Page 1 1 and 40), wherein the connection controller is in 
communication with the data store (Page 42; Figure) and wherein the one or more processing 
elements are programmed or adapted at least to: receive a connection request from a software 
application executing on the remote communicating device to request a connection via the 
communication channel (Page 1 1 and 40); retrieve connection control information associated 
with the software application from the data store (Page 1 1 and 40); determine if the received 
connection request satisfies the retrieved connection control information (Page 11, 40 and 42); 
said retrieved connection control information including an association between the software 
application and one or more of the communication connections (Page 8, 40,44 and 45), wherein 
said association includes whether a connection is permissible with respect to one or more of the 
associated communication connections for the software application (Page 40, 44 and 45); and if 
the connection request satisfies connection control information associated with the software 
application (Page 1 1, 40 and 42), open a communication connection via the connection interface 
based upon the received request for use by the software application (Page 1 1, 40 and 42). For 
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each application, when a connection request is made, the connection controller compares the 
previous checksum with the current checksum and the access status is checked to see if the status 
is allow, ask or block. In the allowed status the scheduled time to allow a connection is checked 
against the requested time (Page 38 and 44). 

Referring to claim 22, Sygate teaches wherein the connection controller is further in 
communication with a user interface by which a user can interact with the remote 
communicating device and wherein the one or more processing elements of the connection 
controller (Page 1 1 and 12) are further programmed or adapted at least to cause the user interface 
to prompt the user if the connection request does not satisfy the retrieved connection control 
information (Page 20-24), wherein the prompt permits the user to indicate authorization for the 
opening of the communication connection (Page 20-24), and to open the communication 
connection based upon the received request for use by the software application in response to the 
user indicating authorization (Page 20-24). When the previous application checksum is not 
equal to the current application checksum a message pops up and ask the user whether to allow 
the connection or not. 

Referring to claim 23, Sygate teaches wherein the connection interface is a wired or 
wireless network interface (Page 14; Supported internet connections), a serial interface, a parallel 
interface, a universal serial bus interface, a PCMCIA interface, a Bluetooth interface or a PCI 
bus interface; wherein the connection request is a request for use of a physical transport layer 
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(Page 8). In order to for a wireless device to access the internet a wireless network interface / 
physical transport layer must be accessed. 

Referring to claim 24, Sygate teaches wherein the system data store comprises RAM, 
ROM, non-volatile memory, cache memory, register memory, hard disk drive, removable media 
reader or combinations thereof (Page 14; Minimum system requirements). 

Referring to claim 26, Sygate further teaches wherein the one or more processing 
elements of the connection controller are further programmed or adapted at least to receive 
connection control information (Page 1 1,20,38 and 40) and to store received connection control 
information in the data store (Page 1 1 and 40). The current checksum and the access status are 
retrieved and stored. 

Referring to claim 27, Sygate further teaches wherein the one or more processing 
elements of the connection controller are further programmed or adapted at least to authenticate 
received connection control information (Page 1 1 and 20-22). A different checksum causes the 
pop-up message to occur to determine whether the user initiated the connection request and 
hence validating the new checksum. 

Referring to claim 28, Sygate further teaches wherein the remote communicating device 
is a PDA, a mobile phone, a notebook computer, a desktop computer, a hand-held computer, a 
mobile e-mail device or a pager (Page 8; Bi-Directional Defense; any PC). 
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Referring to claim 29, Sygate teaches a system for controlling connections on a remote 
communicating device (Page 14; Supported Internet Connections), the system comprising: 
storing means for storing connection control information associated with one or more software 
applications that are capable of execution on the remote communicating device (Page 14; 
Supported Internet Connections and 42; Figure); communication means for allowing a software 
application to communicate via a communication channel (Page 40; Allow); wherein the remote 
communication device has a plurality of communication connections for communicating with 
other devices through the communication channel (Page 8, 40,44 and 45); connection controller 
means for: receiving a connection request from a software application executing on the remote 
communicating device (Page 1 1); retrieving connection control information associated with the 
software application from the storing means (Page 42); determining if the received connection 
request satisfies the retrieved connection control information (Page 42); said retrieved 
connection control information including an association between the software application and 
one or more of the communication connections (Page 8, 40,44 and 45), wherein said association 
includes whether a connection is permissible with respect to one or more of the associated 
communication connections for the software application (Page 40, 44 and 45); if the connection 
request satisfies connection control information associated with the software application (Page 
42), opening a communication connection via the communication means based upon the received 
request for use by the software application (Page 42); receiving connection control information 
(Page 11); authenticating received connection control information (Page 11); and storing 
received connection control information in the storing means (Page 11). For each application, 
when a connection request is made, the connection controller compares the previous checksum 
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with the current checksum and the access status is checked to see if the status is allow, ask or 
block. In the allowed status the scheduled time to allow a connection is checked against the 
requested time (Page 38 and 44). A different checksum causes the pop-up message to occur to 
determine whether the user initiated the connection request and hence validating the new 
checksum. 

Referring to claim 30, Sygate teaches wherein the connection controller means comprises 
prompting means for causing an interface to be made available to a user of the remote 
communicating device if the connection request does not satisfy the retrieved connection control 
information (Page 1 1 and 20-24), wherein the interface permits the user to indicate authorization 
for the opening of the communication connection (Page 20-24), and for causing the connection 
controller means to open a communication connection via the communication means based upon 
the received request for use by the software application (Page 20-24). When the previous 
application checksum is not equal to the current application checksum a message pops up and 
ask the user whether to allow the connection or not. 

Referring to claims 32 and 36, Sygate teaches wherein the physical transport layer is a 
wireless interface (Page 8 and Page 14; Supported internet connections), a USB interface, an 
infrared Data Association interface, a serial interface, a parallel interface, a PCMCIA interface, a 
PCI interface or a combination thereof. In order to for a wireless device to access the internet, a 
wireless network interface / physical transport layer must be accessed. 
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Referring to claim 33, Sygate further teaches wherein the connection control information 
includes one or more connection types associated with the software application (Page 44). 

Referring to claim 34, Sygate further teaches wherein the connection types are an eternal 
connection, an internal connection, or combinations therof (Page 44, ports). 

Referring to claim 35, Sygate further teaches wherein the connection request is a request 
for use of a physical transport layer (Page 8 and Page 14; Supported internet connections). In 
order to for a wireless device to access the internet, a wireless network interface / physical 
transport layer must be accessed. 

Claim Rejections -35 USC§103 
The following is a quotation of 35 U.S.C. 103(a) which forms the basis for all 
obviousness rejections set forth in this Office action: 

(a) A patent may not be obtained though the invention is not identically disclosed or described as set forth in 
section 102 of this title, if the differences between the subject matter sought to be patented and the prior art are 
such that the subject matter as a whole would have been obvious at the time the invention was made to a person 
having ordinary skill in the art to which said subject matter pertains. Patentability shall not be negatived by the 
manner in which the invention was made. 

6. Claim 3 is rejected under 35 U.S.C. 103(a) as being unpatentable over Sygate and further 

in view of Vilhuber (U.S. Patent No. 6,748,543). 

Referring to claim 3, Sygate teaches the limitations of claim 3, but does not teach 
providing authorization information for opening the communication connection. Vilhuber 
teaches providing authorization information for opening the communication connection (Column 
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4, Lines 47-54). Therefore at the time the invention was made, it would have been obvious to a 
person of ordinary skill in the art to combine the art of Sygate with the teaching of Vilhuber 
teaches providing authorization information for opening the communication connection to 
validate access to a network (Column 4, Lines 10-11). Examiner takes official notice of 
automating a manual process, such as providing login and password information, is routine skill 
in the art. Therefore at the time the invention was made, it would have been obvious to include 
the automation of providing login and password information with the teaching of Sygate and 
Vilhuber to relieve the user of entering data. 

2144.04 [R-l] Legal Precedent as Source of Supporting Rationale, m. AUTOMATING A 
MANUAL ACTIVITY. In re Venner, 262 F.2d 91, 95, 120 USPQ 193, 194 (CCPA 1958) 
(Appellant argued that claims to a permanent mold casting apparatus for molding trunk pistons 
were allowable over the prior art because the claimed invention combined "old permanent-mold 
structures together with a timer and solenoid which automatically actuates the known pressure 
valve system to release the inner core after a predetermined time has elapsed." The court held 
that broadly providing an automatic or mechanical means to replace a manual activity which 
accomplished the same result is not sufficient to distinguish over the prior art.). 

7. Claims 16 and 18 are rejected under 35 U.S.C. 103(a) as being unpatentable over Sygate. 

Referring to claim 16, Sygate further teaches updating the connection control information 
but does not teach if the received connection request is the first connection request received from 
the software application (Page 41). Removing the application from the applications list is similar 
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to the new installation, which has not yet requested a connection in that both are not in the 
applications list. When an application that is not in the list attempts to connect to the network a 
status is assigned thus updating the connection control information from an application, which is 
not on the application list to one that is on the list. Since Sygate teaches updating the connection 
control information from an application that is not in the application list, it would be obvious to 
apply the updating of connection control information to a first connection request received from 
the software application. Therefore at the time the invention was made, it would have been 
obvious to a person of ordinary skill in the art to combine the art of Sygate with updating the 
connection control information for the first connection request received from the software 
application to include the application in the application list that includes those applications which 
have requested a connection. 

Referring to claim 18, Sygate further teaches wherein the received connection request 
satisfies connection control information (Pages 20 and 40) but does not teach receiving data via 
the communication connection for use by the software application. Sygate does teach using the 
application program Internet Explore that receives data through a connection. Since Sygate 
teaches using Internet Explorer, it would be obvious to receive data via the communication 
connection for use by the software application (Page 44). Therefore at the time the invention 
was made, it would have been obvious to a person of ordinary skill in the art to combine the art 
of Sygate with receiving data via the communication connection for use by the software 
application so that Internet Explorer can operate. 
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8. Claim 20 is rejected under 35 U.S.C. 103(a) as being unpatentable over Sygate and 
further in view of Zhang et al. (U.S. Patent No. 6,490,289). 

Referring to claim 20, Sygate teaches wherein the software application connection 
request does not satisfy connection control information, and denying authorization for opening a 
communication connection in response to the received connection request, but does not teach a 
second connection request. Zhang et al. teaches a second connection request (Column 4, Lines 
62-65). Therefore at the time the invention was made, it would have been obvious to a person of 
ordinary skill in the art to combine the teaching of Sygate with the teaching of Zhang et al. of a 
second connection request to provide multiple simultaneous network connections (Column 2, 
Line 63). 

9. Claim 25 is rejected under 35 U.S.C. 103(a) as being unpatentable over Sygate and 
further in view of Chen (U.S. Patent Publication No. 2003/0054860). 

Referring to claim 25, Sygate teaches the limitations of claim 25 but does not teach using 
a SIM card reader. Chen teaches using a SIM card (0007). Therefore at the time the invention 
was made, it would have been obvious to a person of ordinary skill in the art to combine the 
teaching of Sygate with the teaching of Chen of using a SIM card to read data stored in a mobile 
phone SIM card (0013). 
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Allowable Subject Matter 
10. Claims 11,15 and 3 1 are objected to as being dependent upon a rejected base claim, but 
would be allowable if rewritten in independent form including all of the limitations of the base 
claim and any intervening claims. 

Referring to claim 1 1, the references sited do not teach wherein the connection control 
information is based upon the software application at installation on the remote 
communicating device; a connection type associated with the software application, one or more 
allowable connection types associated with the software application, a source associated 
therewith or a connection type associated therewith; one or more prohibited connection types 
associated with the software application, a source associated therewith or a connection type 
associated therewith; configuration information provided at installation; wherein the 
connection request is a request for use of a physical transport layer. The Examiner equates the 
ports allowed with the connection types allowed and all other ports with connections that are 
prohibited. 

Referring to claim 15, the references sited do not teach wherein the updating step only 
occurs if the received indication indicates authorization for both current and future opening of 
the communication connection. 
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Conclusion 

1 1 . THIS ACTION IS MADE FINAL. Applicant is reminded of the extension of time policy 
as set forth in 37 CFR 1.136(a). 

A shortened statutory period for reply to this final action is set to expire THREE MONTHS 
from the mailing date of this actioa In the event a first reply is filed within TWO MONTHS of the 
mailing date of this final action and the advisory action is not mailed until after the end of the 
THREE-MONTH shortened statutory period, then the shortened statutory period will expire on the 
date the advisory action is mailed, and any extension fee pursuant to 37 CFR 1 .136(a) will be 
calculated from the mailing date of the advisory action. In no event, however, will the statutory 
period for reply expire later than SIX MONTHS from the mailing date of this final actioa 



12. Any inquiry concerning this communication or earlier communications from the examiner 
should be directed to James D. Ewart whose telephone number is (571) 272-7864. The examiner can 
normally be reached on M-F 7am - 4pm. 

If attempts to reach the examiner by telephone are unsuccessful, the examiner's supervisor, 
William Trost can be reached on (571)272-7872. The fax phone numbers for the organization where 
this application or proceeding is assigned are (571) 273-8300 for regular communications and (571) 
273-8300 for After Final communications. 

Any inquiry of a general nature or relating to the status of this application or proceeding 
shouldJ>e^ected to^ number is (571)272-2600. 




Ewaj* " WILLIAM TROST 

De«fember 27, 2005 SUPERVISORY PATENT EXAMINER 

TECHNOLOGY CENTER 2600 
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